Randy L. Key reports: Georgia’s Department of Human Services Division of Aging Services has notified approximately 3,000 clients in the Community Care Services Program of an unauthorized disclosure of their protected health information. The Department has identified the root cause of the issue, which involved the inadvertent disclosure of certain health diagnoses of affected program…
Category: U.S.
More details on the FTC-LifeLock case
In light of the FTC’s action against LifeLock, and the latter’s response, I thought it might be interesting to post this statement from LifeLock’s 10-Q SEC filing for the period ending March 31, 2015: On March 13, 2014, we received a request from the FTC for documents and information related to our compliance with the…
Update on Medical Informatics Engineering breach (update3)
I’ve previously reported on the breach at Medical Informatics Engineering that affected a number of their Medical Informatics Engineering and NoMoreClipboard clients. Today, they provided an update on the breach. Much of it is a rehash of the previous notification, but there are some additional details on the types of information compromised: The affected data relating to…
Is there a “constitutional right to informational privacy”? as claimed by NTEU’s data breach lawsuit?
On July 8, in noting NTEU’s lawsuit over the OPM hack, I had questioned the suit’s claim that the government breach constituted a violation of their “constitutional right to informational privacy.” Jennifer E. Canfield of Montgomery McCracken Walker & Rhoads LLP also picked up on that point and discusses the issue on Montgomery McCracken Data Privacy…
Massachusetts DESE finds Tewksbury data breach violated state law
In April, this site noted what I described as a “horrific” breach involving the Tewksbury public schools. A document included in a 222-page School Committee packet that had been publicly available online not only exposed personal and private details for the out of district placements of 83 special education students, but it rated their parents according…
More than 1,000 employees in Anchorage veterans administration notified of breach due to employee error
On June 10, the Salt Lake City Regional Office of the Veterans Administration was notified that the The Wounded Warrior Program Office in Seattle had received a box from a veteran in Anchorage. The veteran had previously gone to the Anchorage office in April to request a copy of her VA file, and several weeks later, had returned to…